From 216d482a634458c1a44c4e31557ab89dd0b3138e Mon Sep 17 00:00:00 2001
From: Jonas Smedegaard <dr@jones.dk>
Date: Sun, 26 Mar 2023 18:12:11 +0200
Subject: improve TLS warning to reference postfix documentation on key+cert
 chain file

---
 postfix/postfix.sh | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/postfix/postfix.sh b/postfix/postfix.sh
index 635bc06..dfe0211 100755
--- a/postfix/postfix.sh
+++ b/postfix/postfix.sh
@@ -9,7 +9,6 @@
 #
 # FIXME:
 #  * replace dkimproxy with opendkim: https://wiki.debian.org/opendkim
-#  * use _public_ chained cerificate (not bogusly _private_ chained key)
 #
 # TODO:
 #  * Implement stuff from here: http://www.wsrcc.com/spam/
@@ -169,7 +168,7 @@ ENABLE_TLS=
 if [ -f "$TLS_CHAIN_FILES" ]; then
 	ENABLE_TLS=1
 else
-	warn "No TLS - requires key chain \"$TLS_CHAIN_FILES\"."
+	warn "No TLS - requires key+cert chain file \"$TLS_CHAIN_FILES\". More info at <https://www.postfix.org/postconf.5.html#smtpd_tls_chain_files>"
 fi
 # TODO: enable only on systems with user accounts
 ENABLE_SUBMISSION=1
-- 
cgit v1.2.3